Transfer-Encoding and XSS

Hi All,

I know Transfer-Encoding request header per specification (xmlhttprequest
and fetch) cannot be defined by the user so I'm trying to check when the
browsers use it. I've already google it but I couldn't find something
really clear.
What I'm trying to achieve is check if it's possible to an attacker exploit
a XSS using a cross domain request take advantage of this PHP issue Basically what happens is if a
Apache+PHP server receive a POST request with "Transfer-Encoding: chunked"
header the request body is reflected on the response body.

Ricardo Iramar

Received on Monday, 17 September 2018 16:17:01 UTC